Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/271c6b-19d0-40b5-b58d-0de393171622/1/YORGWA6kfZDkmY1fW7IAlxNq3r8.roa
File: YORGWA6kfZDkmY1fW7IAlxNq3r8.roa (raw, json)
Hash identifier: IgGUZgoQAj9pUrcFOWWrj77Zz5SV5GWbrM37CniEShI=
Subject key identifier: 60:E4:46:58:0E:A4:7D:90:E4:99:8D:5F:5B:B2:00:97:13:6A:DE:BF
Certificate issuer: /CN=a6831d0ef5a59e34d621d613b68f9bffb5298fcd
Certificate serial: 039C
Authority key identifier: A6:83:1D:0E:F5:A5:9E:34:D6:21:D6:13:B6:8F:9B:FF:B5:29:8F:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/poMdDvWlnjTWIdYTto-b_7Upj80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/271c6b-19d0-40b5-b58d-0de393171622/1/YORGWA6kfZDkmY1fW7IAlxNq3r8.roa
Signing time: Tue 08 Feb 2022 18:38:21 +0000
ROA not before: Tue 08 Feb 2022 18:38:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 217.198.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 924 (0x39c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6831d0ef5a59e34d621d613b68f9bffb5298fcd
Validity
Not Before: Feb 8 18:38:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60e446580ea47d90e4998d5f5bb20097136adebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6c:c8:55:92:e5:e7:9e:da:04:7d:5b:41:29:
94:cb:c4:15:bb:5a:e4:38:a0:58:f4:4c:06:00:43:
c4:ea:53:0e:60:b4:06:31:46:f2:36:68:36:7f:84:
0d:a6:0f:6f:87:fa:71:14:70:e8:1b:ce:2d:10:a6:
79:ff:d6:5c:cc:b3:6d:1f:98:d5:e8:9c:8b:72:cc:
db:42:3a:5b:c3:95:9a:59:52:8c:95:19:5b:4b:65:
2f:00:a2:a0:58:58:60:7d:1d:34:33:32:d7:f9:6a:
90:af:df:39:cd:a5:1b:e4:9d:19:d1:8c:93:5d:47:
5c:69:f2:51:a0:6e:d4:1a:86:a2:c6:75:ac:c4:0a:
a5:66:ee:ef:f3:2b:30:05:ac:5f:8e:e1:35:94:f7:
96:1d:94:99:f9:9f:d6:15:94:a1:09:dc:02:94:97:
a6:00:85:c7:7e:8a:c4:e9:c9:9e:93:43:8a:11:d9:
92:fe:35:ef:13:8d:e6:11:58:eb:d5:25:0c:fd:f4:
5c:84:28:fc:58:21:8e:e4:e7:da:6c:69:31:7c:39:
86:38:fa:56:46:01:f6:2e:b8:3b:c4:f6:4c:3d:aa:
86:b0:0d:64:5b:0e:f6:55:9f:f8:af:f3:e1:2b:88:
d8:be:0d:50:74:54:9c:62:2d:a3:35:c3:5c:93:9c:
4a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E4:46:58:0E:A4:7D:90:E4:99:8D:5F:5B:B2:00:97:13:6A:DE:BF
X509v3 Authority Key Identifier:
keyid:A6:83:1D:0E:F5:A5:9E:34:D6:21:D6:13:B6:8F:9B:FF:B5:29:8F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/poMdDvWlnjTWIdYTto-b_7Upj80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/271c6b-19d0-40b5-b58d-0de393171622/1/YORGWA6kfZDkmY1fW7IAlxNq3r8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/271c6b-19d0-40b5-b58d-0de393171622/1/poMdDvWlnjTWIdYTto-b_7Upj80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.179.0/24
Signature Algorithm: sha256WithRSAEncryption
20:de:67:bc:58:f2:ca:93:44:86:c1:d1:0d:e8:00:5e:56:16:
ec:70:dc:b2:8a:4f:8f:22:a8:bd:c3:49:61:d4:ca:a9:52:36:
ec:a0:1d:a1:66:0e:b4:64:82:63:c6:c0:a6:dc:fb:6e:64:2a:
44:ea:84:3e:b4:41:98:c5:d4:14:b0:4c:2c:4c:8f:a9:7f:8c:
c8:7f:bb:36:93:7b:1e:cc:a4:25:8e:d5:c4:53:46:3c:6c:5a:
76:63:06:e6:07:72:41:e6:b6:66:de:98:b7:cf:9f:87:48:cc:
85:d7:b8:bc:77:7d:70:fe:ae:32:07:75:3d:fb:57:35:80:54:
9a:5f:20:ec:fd:fd:9d:a0:c5:6e:b2:75:dd:a3:7b:e1:55:8f:
32:61:73:5d:b3:96:ec:99:6f:8f:63:8c:30:29:6f:ca:bf:3c:
57:bf:55:68:ee:ee:8f:4f:6d:79:15:ca:47:f0:b4:12:e0:f8:
30:69:f1:06:91:95:58:60:fb:38:eb:f9:bc:66:e7:4b:6b:63:
70:3f:53:18:90:ec:55:fb:5e:21:53:76:25:5c:62:a3:72:7e:
6b:a7:1c:a2:37:b6:db:94:fd:7d:32:2f:1b:11:dc:7f:be:09:
01:46:74:25:f2:72:1b:14:8e:6f:58:f9:74:e1:25:bc:b1:d2:
04:2a:87:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:47 2025 by rpki-client